Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: IkWPLPLj+pmKatmCD7loD0Dn1lvJ7R3XemmKKq4OeRM=
Subject key identifier: B1:3D:11:24:E1:DA:AB:C9:05:E0:6C:C9:FC:87:3B:3C:8F:9F:B8:36
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 019EB7336F7419856030567100CF8F189485
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 0877
Signing time: Thu 11 Jun 2026 15:01:01 +0000
Manifest this update: Thu 11 Jun 2026 15:01:01 +0000
Manifest next update: Fri 12 Jun 2026 15:01:01 +0000
Files and hashes: 1: h1IcZRGY_rRXRhpZWTLbtpzh9tM.roa (hash: L8O1+G2QnBwVNFEY7LCl7zf6sGt3HNSfVfaE38wa8Uo=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: PL2+YRZxL6no5FFkAWmMlFzLmOYGKF7NfP1W3qzW58Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 15:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:6f:74:19:85:60:30:56:71:00:cf:8f:18:94:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Jun 11 15:01:01 2026 GMT
Not After : Jun 12 15:01:01 2026 GMT
Subject: CN=b13d1124e1daabc905e06cc9fc873b3c8f9fb836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:87:54:f5:e4:6e:5b:05:33:1b:1b:75:e5:55:
d0:b1:2f:b9:7d:d3:c6:83:94:c0:8d:e5:d0:78:3c:
a4:9b:4d:02:0d:15:94:3d:ec:74:5a:67:85:8f:df:
ea:ff:39:33:1f:6e:2c:46:e2:bd:61:2c:3b:e8:42:
98:0f:1d:a0:d6:21:c1:51:05:6a:0f:b1:ae:3f:61:
8b:11:af:50:6d:87:9b:77:f4:2e:71:20:ae:04:34:
35:8a:7c:dc:7b:ca:b8:69:c6:ca:b2:70:c2:68:dd:
f1:40:0c:83:2a:79:4d:5b:e2:1c:86:c8:f0:56:5f:
01:85:f9:88:c4:46:2c:24:01:3a:e1:34:da:3e:07:
41:41:39:77:2f:4a:d1:56:52:be:a2:4b:28:c9:17:
03:67:2e:87:c3:d4:80:77:a6:70:69:4e:a0:4c:29:
8a:bd:f3:f1:70:49:82:b1:b3:13:e3:64:0e:44:c5:
0a:ee:47:12:b8:69:53:c8:ba:b0:c1:b6:3b:fd:85:
39:ee:ac:07:0e:73:8c:2d:b6:c9:df:22:51:a8:b5:
a8:af:41:b7:eb:81:b1:ad:33:9a:2a:45:a5:db:03:
ce:24:26:b8:94:5d:5c:8e:0c:c5:7b:b9:44:93:09:
31:ae:2a:5d:3b:ff:09:93:79:4b:f0:f1:8a:71:30:
89:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:3D:11:24:E1:DA:AB:C9:05:E0:6C:C9:FC:87:3B:3C:8F:9F:B8:36
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:87:5b:f8:f3:7f:fe:3b:0c:d7:c6:5e:c1:01:0a:31:43:1c:
4b:18:3b:4a:94:46:2f:17:bd:c7:2c:bb:67:c9:f9:52:2e:c4:
a8:54:bf:e9:db:0d:16:45:b6:3e:cc:89:df:8e:48:5f:df:1c:
d7:e9:35:1a:d0:b4:43:45:07:2d:49:85:f1:04:64:dc:2d:97:
d0:38:74:93:43:22:50:03:3d:e5:59:df:47:fb:ba:52:91:5a:
c0:cc:1f:f1:77:36:bf:11:3c:2e:c8:e9:af:b1:65:33:c3:a0:
43:b0:bd:2c:8b:1c:68:5c:02:fa:70:43:63:88:07:6e:31:dc:
fa:f8:7e:f1:22:a7:56:d2:e9:2b:70:49:af:17:6b:c1:a4:3c:
20:9a:57:7f:26:77:d8:2e:de:ef:25:45:11:18:9a:7a:37:72:
0e:90:49:c5:3e:8e:b3:22:41:e1:7e:2e:f6:0f:06:8a:cb:e2:
74:c6:42:fd:b6:c5:a4:88:20:46:5b:db:c6:78:c7:4c:6f:ca:
3a:9b:d2:e3:b3:5e:db:32:6c:ad:6d:a1:c9:9a:ad:b3:10:99:
46:a2:06:3a:ef:65:7c:a0:2a:a9:5d:e0:31:01:d9:21:7b:6b:
4a:4d:b0:97:ba:7b:07:5c:6b:d1:9c:a9:a4:f9:12:25:2f:4d:
10:48:72:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:11:52 2026 by rpki-client